// Copyright (c) Umbraco.
// See LICENSE for more details.

using System.Text.Encodings.Web;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authentication;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using Umbraco.Cms.Core;
using Umbraco.Cms.Core.Mapping;
using Umbraco.Cms.Core.Models.Membership;
using Umbraco.Cms.Core.Security;
using Umbraco.Cms.Core.Services;
using Umbraco.Cms.Web.Common.Security;

namespace Umbraco.Cms.Tests.Integration.TestServerTest;

public class TestAuthHandler : AuthenticationHandler<AuthenticationSchemeOptions>
{
    public const string TestAuthenticationScheme = "Test";

    private readonly IBackOfficeSignInManager _backOfficeSignInManager;

    private readonly BackOfficeIdentityUser _fakeUser;

    public TestAuthHandler(
        IOptionsMonitor<AuthenticationSchemeOptions> options,
        ILoggerFactory logger,
        UrlEncoder encoder,
        IBackOfficeSignInManager backOfficeSignInManager,
        IUserService userService,
        IUmbracoMapper umbracoMapper)
        : base(options, logger, encoder)
    {
        _backOfficeSignInManager = backOfficeSignInManager;

        var user = userService.GetUserById(Constants.Security.SuperUserId);
        _fakeUser = umbracoMapper.Map<IUser, BackOfficeIdentityUser>(user);
        _fakeUser.SecurityStamp = "Needed";
    }

    protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
    {
        var principal = await _backOfficeSignInManager.CreateUserPrincipalAsync(_fakeUser);
        var ticket = new AuthenticationTicket(principal, TestAuthenticationScheme);

        return AuthenticateResult.Success(ticket);
    }
}
